CVE-2020-1472 Zerologon is about to go into the wild. Is XG able to detect those logon attacks with IPS?
Here you go: Details on the attack: https://nakedsecurity.sophos.com/2020/09/17/zerologon-hacking-windows-servers-with-a-bunch-of-zeros/
IPS Signatures with the matching attacks: https://docs.sophos.com…
Sophos would need to add these to their IPS lists.
Added to the IPS list: